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(54) Security system and software to preven 

(57) A security system to prevent unauthorized use 
of a computing device (1 0) comprises a key device (20) 
carrying an key identification. Memory means are in- 
stalled in said computing device for storing a validation 
record. An interface (11.21) is provided to connect said 
key device with said computing device, rendering a 
pathway to exchange said key identification with said 
computing device. The computing device is loaded with 
a program to validate said key identification which is em- 
bedded in said key device using said validation record. 



If said key Identification and said validation record do 
not match use of the computing device Is Inhibited. The 
key device comprises programmable memory means to 
store further key information. The computer program Is 
capable of accessing said further key infomiation upon 
connection of the key device with the computing device. 
Said further key infomiation enables the computer pro- 
gram to automatically add a validation record associat- 
ed with said key device and to grant privileges to the key 
device depending on the contents of said further key in- 
formation. 
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Description 

[0001 ] The present invention relates to a security sys- 

It^ll I lU pi ovd 1 1 Ml leaww iwi i«.%-wi www w« ^w«....| . 

said system comprising a key device carrying an l<ey 
Identification; memory means installed in said comput- 
ing device for storing a validation record; an interface to 
connect said key device with said computing devtoe and 
to provide a pathway to exchange said key Identification; 
a program to validate said key identification embedded 
In said key device using said validation record; and 
means for inhibiting use of said computing device if said 
key Identification and said validation record do not 
match. The invention moreover relates to software for 
preventing unauthorized use of a computing device. 
[0002] A system of the above kind is known from In- 
ternational patent application WO 00/07088 which Is In- 
corporated herein by reference. The known system In- 
volves a key device holding a key serial number together 
with a validation record stored on a hard disk drive of a 
computer. In order to gain access to the computer, a us- 
er has to connect the key device to the computer. Upon 
connection, a computer program loaded on said com- 
puter compares the serial number read from the key de- 
vice with validation records stored on the computer and 
only grants access if said serial numbermatches a serial 
number stored in a validation record. The computer au- 
tomatically powers down when no such matching vali- 
dation record Is found. 

[0003] The computer program of the known system 
may be loaded in the Initial program load flmDware basic 
in/output system (BIOS) for a personal computer in or- 
der to attain a low level, secure protection against inad- 
vertent use of the computer. A drawback of the known 
system is however that for each computer to be secured, 
one or more validation records have to be stored on the 
computer concemed in order to render the security sys- 
tem operative. Already in a small to middle size organ- 
isation or any other environment with many computers 
which have to be secured this turns out relatively la- 
bourious and too tedious to be candled out by a system 
manager alone. Leaving the installation of the neces- 
sary validation records on the computers entirely to the 
users themselves, on the other hand, would impose a 
significant weakness In the security system as a whole. 
[0004] It Is therefore Inter alia an object of the present 
invention to provide a security system of the kind re- 
ferred to In the opening paragraph which allows, at least 
to a certain extent, for a distributed Installation by the 
users on the computing devices concemed without 
compromising the rigidity of the security system as a 
whole. 

[0005] To that end a security system of the type de- 
scribed in the opening paragraph according to the 
present invention is characterized in that the key device 
comprises programmable memory means to store fur- 
ther key infonmation, in that the computer program is ca- 
pable of accessing said further key infomiation upon 



connection of the key device with the computing device 
and in that said further key Information enables the com- 
puter program to automatically add a validation record 
associated with said key device and to grant privileges 
5 to the key devkse depending on the contents of said fur- 
ther key infomiation. The key device In the system ac- 
cording to invention may be programmed and dis- 
patched centrally by a system manager or any other re- 
sponsible officer In the organisation. The further key in- 
to formation which is thereby stored in the key device en- 
ables the key device to register itself onto a computing 
device once a connection Is established. As such the 
key contains all infomnation necessary to add a com- 
plete validation record to the computing devtee without 
15 any further intervention by Its user. Although the physi- 
cal registration may be perfomried by the user himself, 
the system manager nevertheless remains fully In con- 
trol of the privileges which are eventually granted to the 
user. 

20 [0006] A preferred embodiment of the security system 
is according to the invention characterized in that said 
further key infonnation comprises a key type identifica- 
tion of said key devtee and in that said computer pro- 
gram grants privileges to the key device depending on 

25 the key type of the key device. Instead of exactly spec- 
ifying the privileges which may be derived from a key 
device, specific key types are used which define a pre- 
defined access profile. The key type Is written into the 
key device memory and enables the computer program 

30 to add the appropriate validation record to the comput- 
ing device, if access is pemiitted at all. These key types 
and associated access profiles make it relatively easy 
for a system manager to con^eclly program and manage 
all keys to be issued. 

35 [00071 In a special embodiment the security system 
according to the invention Is characterized in that the 
key type Identifies the key device as a prime user key 
which enables first time access to the computing device. 
The prime user key is meant for a principal user of the 

40 computing device running the computer program. In this 
embodiment, each computing device should have a 
principal user and there can only be one principal user 
per system. Principal or prime users identify themselves 
as such by a key device of the specific type and may as 

45 such gain access to a system onto which so far no (oth- 
er) principal user has been registered. After such first 
time access, only the principal user can add or delete 
further users and accordingly decide who will have ac- 
cess to the computing device and the stored data. Op- 

50 tionally a computing devtee speciflccode may be added 
to the prime user key to limit the above privileges to a 
specific computing device only. After registration on a 
specif te computing device the prime user key will loose 
that status and will further act as a normal key. In order 
55 to register on a new computing devtee as a prime user, 
the key needs to be re-adivated as such by the system 
operator or the like so that security within the system is 
preserved. 
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[0008] A further embodiment of the security system 
according to the invention is characterized in that the 
l<ey type identifies the key device as a normal user key. 
A normal user key may be programmed for users who 
need access to a computing device that has already 
been configured by a principal user as described here- 
inbefore. A computing device cannot be accessed by 
means of a normal user key unless a principal user has 
already been registered on said computing device and 
has granted access for the nomnal user key user. As 
such it is the principal user who grants or denies nonnal 
user access to the computing device by adding or de- 
leting the appropriate validation record from a list of nor- 
mal users of the system. If desired, the number of nor- 
mal users of the system may be restricted to a certain, 
pre-defined maximum, 

[0009] In a further embodiment, the security system 
according to the invention Is characterized In that the 
key type Identifies the key device as a service key which 
enables access to a restricted portion of the computing 
device only. To allow sen/ice or maintenance operations 
on a system, the system manager may in this embodi- 
ment program a special sen/ice key. The service engi- 
neer that uses the service key can log onto the system, 
but has subsequently only limited access to the comput- 
ing device. Userspecific, personal data may for instance 
be hidden, whereas access to general system infonna- 
tion may be granted to enable software and hardware 
updates or any other maintenance by the sen/ice engi- 
neer. A service key need not be limited to a specific com- 
puting device but may instead operate on all computing 
devices in the organisation or a selected part thereof. 
Unlike a normal key, the servtee key does not need to 
be registered on a computing device to give access and 
hence no intervention by an end user is required. 
[0010] Often larger organisations are divided into de- 
partments and groups of users which should have mu- 
tual access to their computing devices and associated 
data but not beyond that level. In view thereof, a special 
embodiment of the security system according to the in- 
vention Is characterized in that the further key Infonna- 
tion identifies the key device as a group key, enabling 
access to computing devtees belonging to a specific 
group. Such a group key allows access to all computing 
devices that have a principal user belonging to the same 
group. The principal user of a computing device nonnal- 
ly grants such access. However, a principal user belong- 
ing to one group cannot grant access to a key device 
belonging to another group. As a result central control 
of group access may be secured although the actual 
registration Is canied out by end users. 
[0011] In larger organisations it may be required to 
have access to a computing device without the interven- 
tion of the principal user involved to allow management 
of several groups. In view thereof, a further embodiment 
of the security system according to the invention is char- 
acterized in thatthefurtherkey Information identifies the 
key devtoe as a master key, enabling immediate access 



to computing devices belonging to one or more selected 
groups. In this respect immediate access means that 
such a master key will give access to the computing de- 
vtee concerned without intervention by a principal user, 

5 provided that the computing device has a principal user 
belonging to a group the master key has been issued 
for. A master key can support a number of different, pre- 
defined groups, so that a system manager niay control 
th level of access by a master key holder. 

10 [0012] The key devtee provides a level of security 
which requires the possession of the device itself. With- 
out a key device no access is possible to a computing 
device in the system. To attain an even higher degree 
of security a special embodiment of the security system 

IS according to the Invention is characterized In that at 
least one of the furt:her key information and the valida- 
tion record comprises a personal authorization code to 
be input by a user of the key device. After having estab- 
lished a connection between the key device and the 

20 computing device, requiring the possession of the key 
devtee, the user will in this case be prompted for a per- 
sonal identification or authorization code, requiring 
knowledge. Only a user having both the possession of 
the key device and knowledge of the authorization code 

25 may gain access to the computing device. This addition- 
al security Is specifically important in case of loss or theft 
of a key device. 

[0013] In a further embodiment, the security system 
according to the invention is characterized in that the 

30 further key information comprises an encryption key 
which enables the encryption and decryption of informa- 
tion stored on the computing devtee. Encryption of the 
relevant data provides a further level of security. In case 
of unauthorized access to the computing device, by- 

35 passing the security offered by the key device itself, the 
data stored in the computing device, or at least the sen- 
sitive part of It, may thus still be protected against mis- 
use by means of a suitable encryption algorithm requir- 
ing the decryption key to render the data eligible. 

40 [001 4] The key devtoe may have an unlimited lifetime 
or may be issued for a limited period only. To implement 
this functionality, a further embodiment the security sys- 
tem according to the Invention Is characterized In that 
the further key inf omnation comprises an access limit de- 

45 fining a maximum number of access permissions grant- 
ed to the key devtee. A key device of this kind may for 
instance be used for a service engineer of user who 
needs only temporary access to a computing device. Af- 
ter said number of access pemilssions the key device. 

so becomes invalid and useless so It presents no thread 
anymore to the security of the computing device. 
[001 5] The invention will now described in more detail 
with reference to a specific embodiment and an accom- 
panying drawing, which shows In: 

55 

figure 1 a basic setup of a security system in ac- 
cordance with one embodiment of the present in- 
vention; and in 
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figure 2 a flowchart of a computer program capable 
of running on a computing device which is secured 
by an embodiment of the security system in accord- 
^9 uuith the present invention. 



[001 6] The present invention provides a securrty sys- 
tem to prevent unauthorized access to a computing de- 
vice. Many kinds of computing devices are suitable to 
be protected by means of a system according to the in- 
vention such as different kinds of computers like person- 
al computers , laptop computers, so called personal dig- 
ital assistants (PDA or palmtop computer and the like, 
but also other computing devices like telephone sets 
and different kinds of electronic domestic appliances 
lean themself for the present security system. All that is 
required Is an interface to communteate wtth the device 
and a microprocessortogether with storage means with- 
in the device to process an access request. In the em- 
bodiment below, a personal computer is taken just as 
an example without delimiting the present invention to 
that kind of device. 

[0017] In order to secure one or more a persona! or 
laptop computers 10, a key device 20 is issued for each 
device by a system manager or any other person withm 
an organisation responsible for security of the IT envi- 
ronment. The key devtee 20 consists of a little token 
which may readily be attached to other keys of the user, 
tike home and car keys, likely to be carried along. Key 
information 25 Is written into the key device by means 
of appropriate software, available to the system manag- 
er only, in order to activate the key device. The key de- 
vice comprises programmable memory means capable 
of storing said key infomnation. In this embodiment flash 
EEPROM Is used as storage medium in the key device 
but also other kinds of non-volatile, one-time or repeat- 
edly programmable memory may be used or even vol- 
atile memory provided that the latter is accompanied by 
a suitable power source, like a battery or the like, in order 
to avoid data loss. 

[00181 The key device contains a unique Key ID, 
which may be provided as manufactured In the form of 
a unique serial number or may be programmed later on 
once the key device is activated. Besides a unique ID, 
the key device of the present example holds one or more 
Group ID'S, an Encryption Key tor each group, a Key 
Type identification and an Active Count number. These 
data are provided by the system manager as the key is 
issued and activated. The purpose of the several data 
fields will become apparent below. Depending on the 
specific application more data fields may be added to 
the above described key infomnation or some may pos- 
sibly be dispensed with as the case may be. The key 
device 20 comprises a standard infrared interface 21 
which operates according to the Ultra Protocol as es- 
tablished by the Infrared Data Association (IrDA) in or- 
der to facilitate data communication between a system 
manager's wort< station and the key device. The above 
data are written into the key memory using this interface. 



[0019] The same interface Is used as a communlca- 
V'on means with a user system In order to gain access. 
To this end the computer system is turned on, which 
causes a computer program associated with the system 
5 of the Invention to launch as pari of the startup proce- 
dure, preferably embedded in the BIOS ROM boot se- 
quence. The basic flow of this program is schematcally 
drawn in figure 2. The program starts at 1 00 and auto- 
matically proceeds to a first procedure 200 to lock the 
10 keyboard and mouse of the computer system and to 
prompt the user to connect the key devtee. The latter Is 
simply accomplished by pointing the key device 20 IrDA 
mterafce 21 to a similar Infrared interface 1 1 on the com- 
puter system 1 0 as indteated in figure 1 and pressing a 
15 button on the key device to start data exchange. Once 
connected, the computer program is capable of access- 
ing and retrieving key Information from the key devtee 
and win read the key inf onmatton as part of the program's 
execution. 

20 [0020] First a verification step 202 Is carried out to es- 
tablish whether or not the key devtee is a valid device 
for the system concerned, as such it should belong to 
the same group as the computing device. A specific in- 
teger value both in plain f omn and In encrypted form, us- 
25 ing the group's encryption key, has been written to the 
computing device during set up. At stage 202 this inte- 
ger value is sent to the key device whteh upon receipt 
encrypts the Integers value using Its own , embedded en- 
cryption key. The result is then transmitted to the com- 
30 puting device and there compared to the stored encrypt- 
ed value. If both encrypted values are identical to one 
another, the verification step 202 is successful and the 
program proceeds to step 205. where the key informa- 
tion is actually accessed and transferred to the system. 
35 If no valid verification appears to be possible, the pro- 
gram terminates immediately, and no transfer of sensi- 
tive key information takes place at all. As such the in- 
vention provides unparalleled security. 
[0021] A rolling code mechanism is used In the key 
40 devtee in order to avoid tampering by means of Inter- 
ception of the communication signal between the key 
device and the computer system. This mechanism, also 
known as code hopping, generates a different random 
code using a non-linear encryptton algorithm each time 
45 the key device connects to the computer system. This 
rolling code renders every transmission unique so cap- 
turing and re-transmltting the code is useless. The roll- 
ing code Is a comblnatton of a sync counter and an en- 
cryption key using a non-linear encryption algorithm. 
50 The sync counter value Is the basis of every different 
code for each transmission and is updated each time 
the button of the key devtee is pressed and a connectten 
is made with the computers system. Because of the 
complexity of such a code hopping principle, already a 
55 change in one bit of the sync value will result in a large 
change in the actual code which is being transmitted, 
which is hence impossible to predict. The sync value in 
the key devtee and a corresponding one on thecompu- 
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ter system are synchronized each time a connection is 
made. 

[0022] Primarily the Icey type recorded in the Icey de- 
vice detemnines the further flow of the program. One 
byte of storage is used within the key device to be able 
to Implement 256 different l<ey types. As such only the 
six key types listed in the next table are used In this ex- 
ample, but numerous other key type may be envisaged 
without departing from the scope of the present inven- 
tion each giving its own functionality and privileges. 



Key type: 


Byte code: 


Master key 


00000000 


User keys: 




Prime 


00000001 


Nomnal 


00000010 


Replacement 


00000011 


Group key 


00000100 


Service key 


00000101 



[00231 if the program identifies the key device as a 
master key in step 210, immediate access is granted 
without any further validation of the key device. The pro- 
gram stops at a first termination 300. 
[0024] If the key device Is not a master key, the vali- 
dation program continues and checks at point 220 
whether the key device Is a user key. Different types of 
user keys may be issued. As such the above table lists 
a Prime or Principal user key, a Nonnal user key and a 
Replacement user key. If the program identifies the key 
device as any of these types of user keys it continues 
to step 225 where it checks whether the user key is a 
prime or principal user key. This key Is used for first time 
access to a system and embodies the core of the 
present invention. Each computing device within the 
system of the present invention has its own principal us- 
er being the user that logged onto the device with a 
prime user key when the devtee was not allocated yet. 
Upon connecting the principal user key the program will 
identify the key device as such in step 225 and proceeds 
to step 230 to add validation table to the system. This 
validation table is written to hard disk and contains a 
record for each user which is allowed access to the sys- 
tem. Each valWation record holds the user infomiation 
shown In figure 1 in conjunction with the computer sys- 
tem and comprises such a record associated with the 
principal user ab Initio. Aftenwards, the principal user 
may add as many additional users to the system as de- 
sired, using a separate software tool, provided these ad- 
ditional users are In the same group as the principal us- 
er. This privilege of the principal user emerges from the 
access level whteh is record in the validation table for 
each user and is set to full access as a system admin- 
istrator for the principal user. The group ID associated 
with the principal user is copied from the prime user key 
and detemnines which other user may be added to the 



system on the discretion of the principal user. After the 
validation table has been added the principal user is giv- 
en access to the system and the key device independ- 
ently sets the key type byte to that of a nomial user key 

5 so that the principal user key can be used only once to 
allocate a computer system. Accordingly, without having 
to interfere with the Installation of key devtees on the 
system, a system manager responsible for issuing the 
key devices, keeps control of the security within the sys- 

10 tem. 

[0025] A special kind of key device is the so called 
replacement key which is used in case of loss or theft 
of the principle user key of a system. The presence of 
this type of key is checked at stage 235 of the program. 

15 A replacement key is programmed by the system man- 
ager with the same group number and encryption key 
as that of the lost prime user key. The prime user cmay 
then use this replacement key to gain access to his own 
system. After being verified en found valid In step 202 

20 the program proceeds to step 240 where the existing, 
original prime user record Is deleted and replaced by the 
appropriate record infomnation of the replacement key. 
At the end the replacement key sets Its own type iden- 
tification to that of a prime user key. From now on the 

25 replacement key behaves like a prime user key and the 
original prime user key has become inoperative. 
[0026] If the user key device is not a principal user key 
or a replacement key but a nonnal user key or a replace- 
ment key, the computer program will try to verify the key 

30 infonnatlon at stage 245. As such it will first search the 
system for a validation table. If no such table is found, 
access is denied and the program terminates at 350. If 
on the other hand a validation tables exists on the sys- 
tem the computer program will look for the appropriate 

35 user record in order to validate the key device. This Is 
done by using the encryption key written in the key de- 
vice. This key is used to decrypt the PIN-code, access 
level, encryption key and possibly other user infomnation 
which are stored in the user record in encrypted fomi. 

40 After decrypting this infonnation using the encryption 
key which is retrieved from the key device: the computer 
program establishes in step 250 whether the result is 
sensible or not. In the latter case access is denied lead- 
ing to tenmlnatlon 350 of the program. Othenwise the 

45 program continues to step 265 to check whether or not 
a PIN code Is stored In the user record. It should be not- 
ed that the encryption key does not reside in pemnanent 
memory on the computing device but in the key device 
only. Once the key device has been verified the encryp- 

50 tion key of the key devtee is written into volatile memory 
of the computing device, where.lt is at the disposal of 
the computing device forthe duration of a session. Upon 
power down or a power save mode the encryption key 
Is erased from the computing device's memory and 

55 should again be transferred to the computing device to 
gain unlimited access, using the key device. In this man- 
ner it is practically impossible to retrieve the encryption 
key from in case of possession of merely an inactive 
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computing device, while all sensitive data on the com- 
puting device reside in encrypted form. 
[00271 A PIN code provides additional security and 
may be recorded once a user is added to the system at 
the choice of that user. With a PIN code stored in the 
system the user needs something to have, i.e. the key 
device, together with something to know, i.e. the P N- 
code, in order to gain access to the system. As tiie PI N- 
code is stored in encrypted form It is not possible for 
other users to retrieve the PIN code from the system 
itself after having gained access to the validation table. 
The invention, hence, provides an extreme high degree 
of security. Afterthe PIN code has been validated in step 
260 and found valid In step 265 the program proceeds 
to step 270 If the PIN-code is found invalid the program 
terminates at 350 and access is denied. If no P'N-code 
has been recorded for the specific user, the validation 
steps 260,265 are by-passed andtheprogram proceeds 
to step 270 without further action. 
[00281 At step 270 the program establishes whether 
the key device has expired yet or not. This is done by 
means of the access count which may have been written 
to the key device when it was issued and which deter- 
mines the maximum times of access to the system by 
means of that key The user record comprises an Access 
Count field in order to record each time access is given 
- to that user. If In step 270 the Access Count read from 
the user record exceeds the Active Count, access is de- 
nied and the program temninates at 350. other wise the 
Access Count is incremented by one in step 275 ana 
access is granted at tennination 300. 
[00291 The encryption key retrieved from the users 
key device is indispensable for decrypting (and encrypt- 
inq (selected) data on the computing devtee. According- 
ly even if all security steps of the access program ac- 
cording to the invention are bypassed, the (sensitive) 
data residing on the system are still protected. Because 
the highly sensitive encryption key need not be stored 
on the computing device within the system of the inven- 
tion, the system is ever protected against abuse by in- 
truders not having an appropriate key device. 
[00301 Besides user keys special key may be issued 
for special users. As such a group key allows access to 
all systems In one or more groups, whtoh are identrfied 
as such by means of a collection of group IDs which 
have been written into the key device. A group key may 
be Issued In order to allow management of an entire 
group of computing devices. If the key device is a group 
kev the program immediately branches to step 280 at 
verification of the key device in step 220. In the subse- 
quent validation step 285 the program checks whether 
a validation table exist and the group ID listed in the val- 
idation table in conjunction with the principal user, is ac- 
tually present in the collection of group ID's retrieved 
from the group key device. Moreover, the group key 
should contain the encryption key of each group for 
which It is issued. If all affinnative, access is granted and 
the program terminates at 300. otherwise access is de- 



nied at 350. Opttonally a PIN code may be required to 
gain group access, in whfch case the computer program 
will comprise the necessary validation procedures be- 
tween step 290 and termination 300. 
5 [00311 To allow service or maintenance operations cf^ 
a system, a system manager can program a special 
service key. A service engineer that uses the service key 
can log into a system but cannot access the data resid- 
ing on the system in an encrypted volume. This is im- 
10 piemented in step 295 of the program. If the key device 
fe identified as a seivice key access is given. Because 
the servtee key is only meant to be used for service op- 
eration on the computing device it does not contain an 
appropriate enciyption key to access the encrypted data 
15 on the system. The service key accordingly has only lim- 
ited access atterminatton 325 of the program. If desired 
a service key may be limited to one or more groups and 
may be accompanied by a PIN-code, m which case the 
program will have the appropriate verlfteatton steps be- 
20 tween Steps 295 and 325. 

[00321 if the computer program does not identify the 
key device as a servtee key in step 295 it will tenninate 
at 350. The system according to the invention is hence 
a closed system In that only the key types known to the 
25 computer program may give access to the system, pro- 
vided the have the right credentials, and others simply 
won't The Invention thereby provides for a security sys- 
tem whteh may be managedf rom a distance by a system 
manager without losing security control. 
30 [00331 Although the invention has been elucidated to 
more extend in conjunction with the embodiment de- 
scribed hereinbefore, it will be appreciated that the in- 
vention is not at all limited to the specific example given. 
On the contrary, numerous other embodiments and ex- 
35 amples are feasible for a skilled person without depait- 
ingfromthe scope and the spirit of the present Invention. 
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1 A security system to prevent unauthorized use of a 
computing device, said system comprising a key 
devtee carrying an key identification; memory 
means installed in said computing device for storing 
43 a validation record; an Interface to connect said key 
devk^e with said computing device and to provide a 
pathway to exchange said key IdentHicatlon; a pro- 
gram to validate said key identification embedded 
in said key device using said validation record; and 
so means for inhibiting use of said computing devtee If 
said key identification and said validation record do 
not match characterized in that the key devtee 
comprises programmable memory means to store 
further key InfomiaHon, In that the computer pro- 
55 gram is capable of accessing said further key Intor- 
matton upon connection of the key device with the 
computing device and In that said further key infor- 
matton enables the computer program to automat- 
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ically add a validation record associated with said 
key device and to grant privileges to the key device 
depending on the contents of said further key infor- 
mation. 

2. A security system according to claim 1 character- 
ized In that said further key information comprises 
a key type Identification of said key device and In 
that said computer program grants privileges to the 
key devtoe depending on the key type of the key 
device. 

3. A security system according to claim 2 character- 
ized In that the key type identifies the key device 
as a prime user key which enables first time access 
to the computing device. 

4. A security system according to claim 2 character- 
ized In that the key type identifies the key device 
as a nomial user key. 

5. A security system according to claims 2 character- 
ized in that the key type Identifies the key device 
as a service key which enables access to a restrict- 
ed portion of the computing device only. 

6. A security system according to any of the preceding 
claims characterized in that the further key infor- 
mation identifies the key device as a group key. en- 
abling access to computing devices belonging to a 
specific group. 

7. A security system according to claim 6 character- 
ized In that the further key Information identifies the 
key device as a master key. enabling immediate ac- 
cess to computing devk:es belonging to one or more 
selected groups. 

8. A security system according to any one of the pre- 
ceding claims characterized In that at least one of 
the further key information and the validation record 
comprises a personal authorization code to be input 
by a user of the key device. 

9. A security system according to any one of the pre- 
ceding claims characterized in that the further key 
infomnatlon comprises an encryption key which en- 
ables the encryption and decryption of Infonnatlon 
stored on the computing device. 

10. A security system according to claim 9 character^ 
ized In that the encryption key is stored In the key 
device pemnanently and on the computing device 
only temporary for the duration of a session. 

11. A security system according to anyone of the pre- 
ceding claims characterized In that the further key 
Infonnation comprises an access limit defining a 
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maximum number of access pennissions granted 
to the key device. 

12. A security device according to anyone of the pre- 
ceding claims characterized in that said interface 
comprises a wireless connection between the key 
device and the computing devbe. 

13. A security system according to any one of the pre- 
ceding claims characterized In that key device and 
said computing device are capable of encrypted da- 
ta exchange over said Interface. 

1 4. Software to prevent unauthorized access to a com- 
puting device as used in the system according to 
anyone of the preceding claims. 
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Software according to claim 14 comprising means 
to identify a key device connected to saidcomputing 
device and to retrieve a specific key Infonmatlon 
from said key device, in which said key infonnation 
determines at least part of a further execution of the 
software's program code. 

Software according to claim 1 4 or 1 5 characterized 
in that said key information enables the computer 
program to automatically add a validation record as- 
sociated with said key device and to grant privileges 
to the key device depending on the contents of said 
key information. 
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(57) A security system to prevent unauthorized use 
of a computing device (1 0) comprises a key devtee (20) 
carrying an key identification. Memory means are In- 
stalled In said computing device for storing a validation 
record. An interface (11 ,21) Is provided to connect said 
key device with said computing device, rendering a 
pathway to exchange said key identification with said 
computing device, the computing device is loaded with 
a program to validate said key identification whteh is em- 
bedded in said key device using said validation record. 



If said key Identification and said validation record do 
not match use of the computing device Is inhibited. The 
key device comprises programmable memory means to 
store further key Infomnatlon. The computer program is 
capable of accessing said further key information upon 
connection of the key device with the computing device. 
Said further key information enables the computer pro- 
gram to automatically add a validation record associat- 
ed with said key device and to grant privileges to the key 
device depending on the contents of said further key in- 
fonnation. 
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